Malindo Air hit by data breach, passengers’ info compromised 
Malindo

by RAHIMI YUNUS/ TMR GRAPHIC

Malindo Airways Sdn Bhd has been hit with a data breach that compromised millions of passengers’ passport details, home addresses and phone numbers, according to a news report.

Malindo Air CEO Chandran Rama Muthy confirmed about the leak with the South China Morning Post, saying the company was investigating the matter and had already reported to the Malaysian Communications and Multimedia Commission (MCMC).

“We found out about this breach last week. We and a third party vendor are checking as we speak and will come up with a statement soon. We will advise passengers accordingly as per the investigation outcome,” Chandran was quoted as saying today.

Chandran said the number of affected passengers’ details are yet to be ascertained.

He added that the company would hire an independent cybersecurity firm to do a full forensic analysis into the nature of the data breach. 

Information of passengers who flew with Malindo Air and Thai Lion Air — subsidiaries of the Indonesian low-cost carrier Lion Air — was uploaded and stored in a public cloud storage resource, the Amazon web services bucket.

Four files, where each two belong to both airlines, were dumped online by “Spectre”, a dark web site operator that publishes download links of leaked data and stolen databases.

There were also references to Batik Air, another Lion Air unit that is based in Jakarta, Indonesia.

Entitled “Passenger Details” or “Passengers”, the documents contain full names, home addresses, email addresses, dates of birth, phone numbers, passport numbers and expiration dates.

The data was reported to be distributed in groups on instant messaging service Telegram, and on cloud storage and file-hosting services such as mega.nz and openload.cc, which still contain an active link to these databases.